We at zero(day)solutions often find that there is a certain amount of confusion between what consitutes a penetration test and what makes up a vulnerability assessment. They two terms are often used in the same context. More often than not we find that our clients are looking for a vulnerability assessment.

A penetration test is a method of evaluating the security controls of a network or host and the policies and procedures put in place to protect these assets. This often takes the on the form of a simulated attack by a malicious hacker. This process generally involves the active exploitation of any security vulnerabilities, misconfigurations or techincal flaws found.

A security assessment generally refers to the process of discovering and quantifying the impact of vulnerabilites found in a system. zero(day)solutions will, through a comprehensive security assessment, be able to provide you the information to:

• Identify the level of compliance with existing internal policies and procedures.

• Identify the overall security levels of each of the areas assessed during the engagement.

• Identify existing vulnerabilities in order to define and quantify appropriate levels of risk associated with discovered vulnerabilities.

• Propose remediation and mitigation solutions through prioritizing risk and associated resources and expenses.

• Increase awareness of security issues and improve the overall security posture for your organization.

The results of the security assessment will be documented in a report and presented to both techincal and managerial teams providing the opportunityfor questions to be asked and stratagies for remediation and improving the current security controls to be discussed. For additional information and to have one of our team contact you please email: sales [at] zerodaysolutions [dot] com